ada/agentguard-ci
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7587c285e71af2f6fc1c59f6fdbe29a4495e580d
agentguard-ci/docs/plans/phase3-step2-defectdojo.md
T
Elizabeth W a9224a41c1 note to split into multiple files
2026-04-19 22:29:53 -06:00

1.2 KiB
Raw Blame History

Implementation Plan: DefectDojo Upload

Objective

Implement a task that pushes all SARIF/JSON reports from the PVC to DefectDojo via its API.

Requirements

  • Define a task template named upload-defectdojo.
  • Depend on the completion of all parallel scanner tasks (Phase 2).
  • Mount the shared PVC at /workspace.
  • Expect DefectDojo API keys and URL to be injected as environment variables via Infisical (with initContainer wait logic).
  • Iterate over the /workspace/reports/ directory.
  • For each file, make an API request to DefectDojo to import the scan results (mapping the file type to the correct DefectDojo parser, e.g., SARIF -> Generic SARIF).

Agent Instructions

  1. Add the upload-defectdojo template to the ClusterWorkflowTemplate.
  2. Write the API upload script (Python, curl, or a dedicated CLI) in the task template.
  3. Configure the Infisical initContainer to wait for the DefectDojo credentials.
  4. CRITICAL: File Splitting: Do NOT put everything into one giant file! Split your YAML manifests or configurations into separate, smaller files (e.g. using separate Helm template files, configmaps, or helper scripts) to prevent exhausting the context window.
Reference in New Issue View Git Blame Copy Permalink